$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: WUsnJ0dgi60t6K5QTPyABQBpzltnz0XvjoxEn3tZvMQ= Subject key identifier: 47:48:7B:0A:E9:98:8A:B2:88:A5:0E:E8:9D:DD:A8:8F:A9:E2:4B:CB Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 08C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 08C1 Signing time: Fri 22 Nov 2024 20:13:31 +0000 Manifest this update: Fri 22 Nov 2024 20:13:31 +0000 Manifest next update: Fri 29 Nov 2024 20:13:31 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: MJhR2XfyDe7GYg2beSaygmvuvyfXdT2aKTphGd6fAuk=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: awdMDI45WMoyA7Hv0k/0lwP8aK2FFS10Os+VOyBIq0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2246 (0x8c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: Nov 22 20:13:31 2024 GMT Not After : Nov 29 20:13:31 2024 GMT Subject: CN=6740e5eb-cd41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cc:95:11:2b:b4:f2:a4:31:86:be:a6:f4:a8: d1:c9:18:83:ed:59:36:58:28:c4:3b:5e:c0:a8:f2: 7a:01:90:39:61:f7:cd:ab:69:5e:cd:a9:7b:66:b8: 58:37:cb:0e:44:95:93:11:61:75:08:fc:c3:ff:02: bb:5f:27:f9:24:2c:3f:21:66:00:9f:41:cb:19:7e: 29:8b:b0:26:8f:bc:23:6f:12:02:2c:0c:31:88:ff: bc:f4:91:83:6d:e7:48:b1:49:6a:7f:60:92:70:fa: 31:38:8e:6e:56:99:9b:d4:09:f4:c9:86:64:28:19: d4:24:e9:38:95:8b:27:07:23:42:b2:ca:1e:09:e6: ac:a7:3c:db:29:80:37:26:e2:57:c6:4a:ee:27:9c: 91:fe:9d:a6:a4:73:bd:ea:65:8f:32:e8:76:68:38: 7a:b9:5e:a7:bf:b1:3c:79:90:67:10:56:71:c0:0a: 88:51:17:cb:9e:2f:b5:cd:1d:b5:af:e5:7e:6a:da: 1a:0d:0c:71:d4:8a:56:9a:8c:48:a9:18:b6:0b:c6: 9f:ca:a9:f9:2a:42:53:89:2c:b3:19:13:d3:70:eb: d3:da:1d:8f:e8:c6:cf:ea:43:55:11:c2:0f:38:ea: 4b:f9:d9:3e:45:64:71:0a:cc:23:b2:e8:ba:95:ab: c1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:48:7B:0A:E9:98:8A:B2:88:A5:0E:E8:9D:DD:A8:8F:A9:E2:4B:CB X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:30:1d:94:23:2c:07:d1:80:79:cd:6a:62:f3:1d:d1:c9:b5: 92:5e:e9:ff:97:cf:3d:ee:46:f2:f2:fb:5a:c7:08:71:31:5a: 57:02:c7:b7:86:0c:4b:bf:57:34:6e:f3:67:fa:cf:a5:63:19: 21:eb:ef:b5:51:56:9a:48:97:2c:5f:09:d7:b8:d3:c7:4b:d2: d6:04:a6:9d:12:4d:ed:78:c1:b5:53:9d:60:18:25:27:c3:8f: 63:f2:dc:94:d1:17:6e:0a:0b:11:87:d1:c3:e6:04:77:19:0b: e1:54:9c:85:9d:9d:f4:54:f4:6c:7f:89:d8:14:55:1c:76:0e: 4d:41:7b:c4:c2:5f:c6:f5:32:b4:5d:2d:eb:d8:2b:e3:5f:d8: 35:e2:39:eb:2a:84:c8:38:6c:9b:db:3f:3e:16:0e:ce:5c:71: a9:c4:40:c0:01:da:75:f3:2c:72:6e:c5:66:1b:d1:8e:c2:11: 91:55:65:72:83:f1:f8:d2:03:c1:be:e5:8c:84:dd:db:35:b6: a0:93:e0:e3:19:a9:85:ff:d0:80:5e:fa:2d:48:5c:2b:76:f2: 95:5b:2c:28:bd:18:32:0a:e9:62:6d:5b:6f:1a:66:61:c2:3f: 18:34:9f:33:30:bf:b1:18:f1:41:24:f2:90:79:09:1a:25:7e: f6:6e:d8:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjQxMTIyMjAxMzMxWhcNMjQxMTI5MjAxMzMxWjAYMRYwFAYD VQQDEw02NzQwZTVlYi1jZDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMyVESu08qQxhr6m9KjRyRiD7Vk2WCjEO17AqPJ6AZA5YffNq2lezal7ZrhY N8sORJWTEWF1CPzD/wK7Xyf5JCw/IWYAn0HLGX4pi7Amj7wjbxICLAwxiP+89JGD bedIsUlqf2CScPoxOI5uVpmb1An0yYZkKBnUJOk4lYsnByNCssoeCeaspzzbKYA3 JuJXxkruJ5yR/p2mpHO96mWPMuh2aDh6uV6nv7E8eZBnEFZxwAqIURfLni+1zR21 r+V+atoaDQxx1IpWmoxIqRi2C8afyqn5KkJTiSyzGRPTcOvT2h2P6MbP6kNVEcIP OOpL+dk+RWRxCswjsui6lavBoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdIewrp mIqyiKUO6J3dqI+p4kvLMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdMB2UIywH0YB5zWpi8x3RybWSXun/l8897kby8vtaxwhxMVpXAse3 hgxLv1c0bvNn+s+lYxkh6++1UVaaSJcsXwnXuNPHS9LWBKadEk3teMG1U51gGCUn w49j8tyU0RduCgsRh9HD5gR3GQvhVJyFnZ30VPRsf4nYFFUcdg5NQXvEwl/G9TK0 XS3r2CvjX9g14jnrKoTIOGyb2z8+Fg7OXHGpxEDAAdp18yxybsVmG9GOwhGRVWVy g/H40gPBvuWMhN3bNbagk+DjGamF/9CAXvotSFwrdvKVWywovRgyCulibVtvGmZh wj8YNJ8zML+xGPFBJPKQeQkaJX72bthN -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org